5fa6fc93fc0a4c49487d1d3dc4eefb7f0296cdc35ebaf6cd358661971875461a

Sharing

Copy URL Twitter E-mail

General

Target

5fa6fc93fc0a4c49487d1d3dc4eefb7f0296cdc35ebaf6cd358661971875461a
Size

3.1MB
MD5

cf8477e97e75911d5957fb296dbdc360
SHA1

e30d45aa245daca1d2a46820c317cd117fee2372
SHA256

5fa6fc93fc0a4c49487d1d3dc4eefb7f0296cdc35ebaf6cd358661971875461a
SHA512

8ffb21bab02424e88bcd6dc8cd71411cf37b920f1240c71423e101754677ca39a7924cdc73e81fc730099ff94c59689896867da16f6c9318c7fab17a55fa9ba8
SSDEEP

49152:h6JzvzboYRGYpV5LTQgVc/tZRR+qit3mZsRVEdVJBkIPhnVzk1W/n/moFTy:X0t3mlBkwV41W/n/HTy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fa6fc93fc0a4c49487d1d3dc4eefb7f0296cdc35ebaf6cd358661971875461a

Files

5fa6fc93fc0a4c49487d1d3dc4eefb7f0296cdc35ebaf6cd358661971875461a
.exe windows:6 windows x64 arch:x64

2fc045c442e27bc1673e9a40aed8cf5d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\文档管理\中正\MIAXIS_SM-92M&SM-93M+产品资料包\SDK\Windows_MiaxisFingerprintDevices_SDK_V1.2.3.2023051201\samplecode\Cplusplus\bin64\VirtualComDemo.pdb

Imports

kernel32

RtlPcToFileHeader
GetSystemInfo
VirtualAlloc
VirtualQuery
FindFirstFileExW
FindNextFileW
QueryPerformanceFrequency
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetFullPathNameW
HeapQueryInformation
SetStdHandle
GetFileType
ExitProcess
GetStdHandle
CompareStringW
LCMapStringW
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
SetFilePointerEx
GetDriveTypeW
GetTimeZoneInformation
GetStringTypeW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateFileW
GetCurrentDirectoryW
WriteConsoleW
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
OutputDebugStringW
GetTempFileNameA
SearchPathA
GetProfileIntA
GetTempPathA
GetFileTime
GetFileSizeEx
GetFileAttributesExA
SetErrorMode
FindResourceExW
GetFileAttributesA
VerifyVersionInfoA
VerSetConditionMask
GetWindowsDirectoryA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
CreateFileA
RtlUnwindEx
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
lstrcpyA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetThreadLocale
GlobalFlags
GetACP
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileA
FindFirstFileA
FindClose
FileTimeToLocalFileTime
GetCurrentProcessId
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
CloseHandle
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpA
GetVersionExA
GetCurrentThread
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetProcAddress
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
GlobalAlloc
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
FindResourceA
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
LoadLibraryW
GetModuleHandleExW
GetModuleFileNameW
SetLastError
OutputDebugStringA
GetTickCount
CreateDirectoryA
Sleep
GetLocalTime
GetModuleFileNameA
RemoveDirectoryA
DeleteFileA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
HeapFree
FindResourceW
LoadResource
LockResource
SizeofResource
GetCurrentDirectoryA

user32

InvalidateRgn
CopyAcceleratorTableA
CharNextA
KillTimer
SetTimer
DeleteMenu
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
GetAsyncKeyState
CopyImage
LoadImageW
TrackMouseEvent
LoadCursorA
GetSysColorBrush
RealChildWindowFromPoint
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageA
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
IntersectRect
InflateRect
FillRect
ClientToScreen
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
IsDialogMessageA
SetWindowTextA
CheckDlgButton
IsRectEmpty
ShowWindow
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
SendMessageA
EnableWindow
GetDC
GetSysColor
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongPtrA
GetClassLongA
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongA
PtInRect
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
SetClassLongPtrA
SetWindowRgn
SetParent
DrawEdge
DrawFrameControl
IsZoomed
LoadMenuW
BringWindowToTop
GetNextDlgGroupItem
EqualRect
MapWindowPoints
MessageBoxA
AdjustWindowRectEx
MessageBeep
CharUpperA
CreatePopupMenu
GetMenuDefaultItem
LoadImageA
DrawIconEx
GetIconInfo
MoveWindow
EnableScrollBar
CopyRect
SetRect
OffsetRect
DrawFocusRect
DrawStateA
DestroyIcon
GetMessagePos
ScreenToClient
InvalidateRect
UnregisterClassA
LoadIconW
GetSystemMenu
AppendMenuA
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
LoadBitmapA
GetDlgItem
GetWindowRect
ReleaseDC
IsWindow
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongA
GetDesktopWindow
GetParent
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
RemoveMenu
GetKeyNameTextA
MapVirtualKeyA
SendDlgItemMessageA
SetRectEmpty
SetCursorPos
CopyIcon
GetWindowTextA
FrameRect
LoadAcceleratorsA
RegisterWindowMessageA
DispatchMessageA
PeekMessageA
GetMessageTime
PostMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu
IsChild
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetDlgCtrlID
SetFocus
GetFocus
GetKeyState
GetCapture
GetMenu
SetMenu
TrackPopupMenu
UpdateWindow
GetForegroundWindow
SetForegroundWindow
BeginPaint
EndPaint
ValidateRect
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatA
UnionRect
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
PostThreadMessageA
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
GetPropA
RemovePropA
GetWindowTextLengthA

gdi32

MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectA
GetMapMode
SetRectRgn
DPtoLP
GetTextExtentPoint32A
GetTextMetricsA
GetBkColor
GetTextColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
CreateEllipticRgn
Ellipse
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
EnumFontFamiliesExA
Rectangle
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceA
SetTextAlign
SetStretchBltMode
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
BitBlt
CreateBitmap
SetTextColor
SetBkColor
PatBlt
CreateRectRgnIndirect
GetDeviceCaps
CreateDCA
CopyMetaFileA
StretchDIBits
SetDIBColorTable
GetObjectA
DeleteDC
CreateCompatibleDC
CreateDIBSection
DeleteObject
StretchBlt
GetDIBColorTable
CreatePolygonRgn
GetStockObject
SelectObject

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA

shell32

DragFinish
DragQueryFileA
ShellExecuteA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFileInfoA
SHAppBarMessage
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ImageList_GetIconSize
InitCommonControlsEx
ImageList_GetIcon

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
PathFileExistsA
StrFormatKBSizeA

uxtheme

IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
OpenThemeData
GetThemePartSize
GetThemeSysColor
IsAppThemed
GetWindowTheme
DrawThemeText
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData

ole32

IsAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
OleTranslateAccelerator
OleFlushClipboard

oleaut32

VarBstrFromDate
VariantCopy
SafeArrayDestroy
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
LoadTypeLi
SysAllocString

oledlg

ord8

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipDrawImageRectI
GdipAlloc
GdipFree
GdipCreateBitmapFromStream
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageI
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipCreateBitmapFromHBITMAP
GdipDisposeImage

fingerprint

zzFingerprintFeatureMatchResult
zzFingerprintFeatureSearch
zzInit
zzCompress
zzGetVersion
zzGetQualityNFIQScore
zzGetQualityScore
zzCalcFingerArea
zzGetFIR_Ratio_ISO_V2011
zzDrawPointImg
zzGetFIR_Ratio_ISO_V2005
zzFingerprintFeatureExtract

driver

MXgetEnableMode
mxSetDevicePort
mxGetDeviceList
mxCaptureCompressEncryptAndSign
mxGetDeviceInfo
mxReadFTMCertOTP
mxGenRSAKey
mxReadImage
mxUPTZFlashBuffer
mxSetTemplateType
mxClearFlash
mxDeleteOneMB
MXX509Certificate2RsaPublicKey
mxMatchTZFlashBuffer
mxGenTZFlashBuffer
mxCaptureFingerprint
mxCaptureFingerprintEx
mxGetDeviceAlgVersion
mxGetDriverDllVersion
GetDeviceInfo
mxGetDeviceVersion
mxGetDeviceSN
mxGetErrorMsg
mxDetectFingerprint
mxGetStoreNum
mxGetDeviceUUID
MXX509Certificate2ExpirationDate
MXcaptureExtractSignEncrypt
MXenableMode_L1
MXenableMode_L0
EnCodeBase64
GenerateDigest
DigitalSignatureRSA2048withSHA256
AES_GCM_NOPADDING_Encryption
AES_GCM_NOPADDING_Decryption
AsymmetricEncryptionX509
SignData
WriteFiletoDevice
ReadFilefromDevice
DeleteFileFromDevice
WriteData
ReadDATA
mxGetDeviceType
mxSearchFeature
DeleteData
mxGetDevNameandFacInfo

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 550KB - Virtual size: 549KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 526KB - Virtual size: 525KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fc045c442e27bc1673e9a40aed8cf5d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

fingerprint

driver

oleacc

imm32

winmm

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 550KB - Virtual size: 549KB

.data Size: 30KB - Virtual size: 59KB

.pdata Size: 89KB - Virtual size: 88KB

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 526KB - Virtual size: 525KB

.reloc Size: 60KB - Virtual size: 60KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 550KB - Virtual size: 549KB

.data
Size: 30KB - Virtual size: 59KB

.pdata
Size: 89KB - Virtual size: 88KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 526KB - Virtual size: 525KB

.reloc
Size: 60KB - Virtual size: 60KB